Include Mozilla's CRLite and daily updates for both and suddenly we have high performance high security certificate validation which includes revocation checking and duplicate certificate discoverability (MITM risk) from the transparency logs
https://blog.cloudflare.com/bootstrap-mtc/Open linkView original on slrpnk.netIt's a portable light source, technically a flashlight
In this paper, we undertake a structured security analysis of Wi-Fi client isolation and uncover new classes of attacks that bypass this protection. We identify several root causes behind these weaknesses. First, Wi-Fi keys that protect broadcast frames are improperly managed and can be abused to bypass client isolation. Second, isolation is often only enforced at the MAC or IP layer, but not both. Third, weak synchronization of a client's identity across the network stack allows one to bypass Wi-Fi client isolation at the network layer instead, enabling the interception of uplink and downlink traffic of other clients as well as internal backend devices. Every tested router and network was vulnerable to at least one attack. More broadly, the lack of standardization leads to inconsistent, ad hoc, and often incomplete implementations of isolation across vendors.
https://www.ndss-symposium.org/ndss-paper/airsnitch-demystifying-and-breaking-client-isolation-in-wi-fi-networks/Open linkView original on slrpnk.netWhen an attached image is loaded, then if the loading fails the app should check if it's using proxying (domain belongs to posters'/forums' instance or user's instance & contains redirect format URL pointing to another domain) and give you a button to press to retry, which would suggest bypassing the proxy and requesting the original image directly
Motivation: I keep seeing broken image embeds and can't be bothered to view source and try the redirect section in my browser after rewriting it to a proper link for every failed image load
Let the app do that for me
